吾爱破解 - 52pojie.cn

 找回密码
 注册[Register]

QQ登录

只需一步,快速开始

查看: 3911|回复: 4
收起左侧

[PEtools] Basic PE Explorer (v1.0 BETA)

  [复制链接]
cmc5410 发表于 2013-1-6 19:49
本帖最后由 cmc5410 于 2013-1-25 11:00 编辑

Hey guys, been working with PE for quite a few weeks now and decided to actually make an application using the libraries I create during that time. It is a relatively basic mimic of the "PE Explorer" application, however it also lets you parse PEs from modules loaded in processes and shit, which I thought was handy..

Here's some screenshots (Yeah, the GUI is yucky, I was lazy)

Opening process modules...



2u8jfhd.png

2z7eya1.png
2q36git.png

It's pretty basic as you can see.

This is by no means complete, the export table is only a partial parse, because I got frustrated at it. There are still 14 other sections in a standard PE file that I will probably never get around to doing.

Common errors:
Can't see a process you think should be open?
At this stage I only made it extract processes that have a window, longer lists would take a while to extract all the icons and create the list...etc. Also, can't parse 64-bit processes due to protection problems.

Planned future features
Hopefully I end up finishing the export table, I'm probably going to rethink and rework the process module selection ergonomics 'cos at the moment it's a touch laggy for a MenuStrup.

Credits (though they are in the screenshot)

The fantastic documentation of the PE structure by Microsoft (97 pages of pure sex)
David
Hell_Demon

Has been a good learning experience.

Scans:

[x][x]

Basic PE Explorer.rar (304.02 KB, 下载次数: 46)

发帖前要善用论坛搜索功能,那里可能会有你要找的答案或者已经有人发布过相同内容了,请勿重复发帖。

头像被屏蔽
bambooqj 发表于 2013-1-6 20:43
提示: 作者被禁止或删除 内容自动屏蔽
zxqwe 发表于 2013-1-6 20:48
yonggan 发表于 2013-1-7 01:51
1354669803 发表于 2013-1-7 13:20
PE头的啥?
您需要登录后才可以回帖 登录 | 注册[Register]

本版积分规则

返回列表

RSS订阅|小黑屋|处罚记录|联系我们|吾爱破解 - LCG - LSG ( 京ICP备16042023号 | 京公网安备 11010502030087号 )

GMT+8, 2024-12-27 14:13

Powered by Discuz!

Copyright © 2001-2020, Tencent Cloud.

快速回复 返回顶部 返回列表